Filter and search through 199,375 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-22786 | ### Impact Gin-vue-admin <= v2.8.7 has a path traversal vulnerability in the breakpoint resume upload functionality. Attacker can upload any files on ... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2026-22785 | ### Impact The MCP server generation logic relies on string manipulation that incorporates the summary field from the OpenAPI specification without pr... | 0.0 | 0 | Neutral | Yes | Yes |
| CVE-2026-22782 | ### Summary Invalid RPC signatures cause the server to log the shared HMAC secret (and expected signature), which exposes the secret to log readers an... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22755 | Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Vivotek Affected device model numbers are FD8365,... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22714 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Mona... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22713 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Grow... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22712 | Improper Encoding or Escaping of Output due to magic word replacement in ParserAfterTidy vulnerability in The Wikimedia Foundation Mediawiki - Approve... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22710 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Wiki... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22708 | Cursor is a code editor built for programming with AI. Prior to 2.3, hen the Cursor Agent is running in Auto-Run Mode with Allowlist mode enabled, cer... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22698 | ### Summary A critical vulnerability exists in the SM2 Public Key Encryption (PKE) implementation where the ephemeral nonce `k` is generated with sev... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22696 | ## Impact This vulnerability involves a critical gap in the cryptographic verification process within the dcap-qvl. The library fetches QE Identity c... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-22643 | In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to become unresponsive due to Improper Input Validation vul... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22642 | An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: - Multiple org... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22641 | This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by adding an extra slash character in the URL path. Us... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22640 | An access control vulnerability was discovered in Grafana OSS where an Organization administrator could permanently delete the Server administrator ac... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22639 | Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22638 | A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect. This allows attackers to r... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22637 | The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make ... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22636 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-22635 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |